Revision as of 20:21, 28 December 2013

Bring your infectious enthusiasm to an audience with a short attention span! Discuss a program, system or technique! Pitch your projects and ideas or try to rally a crew of people to your party or assembly! Whatever you bring, make it quick!

The Lightning Talks were a huge hit at the 29c3! For the first time since we introduced the new Lightning Talk format, every slot was completely booked by Day 2. There were three packed sessions and over seven hours of Lightning Talks. There is a possibility that Lightning Talk slots will be gone by the time the Congress starts, so submit your idea as soon as possible!

How it Works

The 30c3 Lightning Talks are 5 minutes each, given on a first-come, first-served basis to presenters who provide complete submissions on non-controversial topics.

Speakers take the podium as the moderator brings up their slides on the beamer.

Once slides are ready, the speaker is given a "Go" to proceed.

Speakers introduce themselves

Speakers advance their own slides using the remote on the podium

With one minute left to go, the moderator will give a "One Minute" warning over the microphone

The moderator will give another warning with 30 seconds left

At 10 seconds, the moderator will signal the audience to count down.

When the speaker is finished, or five minutes are up, the audience applauds and the next speaker takes the stage.

180 Second Express Round

Is 5 minutes too much? What can you do in 180 seconds or less?

In order to make room for more participants, ease the submission requirements, and create a dumping ground for people who cannot follow directions, we're trying this special 3 minute round on Day 4. The application process is the same!

Hacking (with) care is a versatile, collaborative initiative which purpose is to bring balance, embodiment, body & soul awareness and care to the hackers' communities, living by the shared ethics of goodness for all, joyful creativity, freedom and sharing of knowledge.

Hacking (with) care explores questions relative to hackers' psychological and physical well-being and health, and looks at how a sense of freedom in the technological realms can relate to a sense of freedom in one's life. We seek to encourage vitality and (data)love potentialities to blossom both on and away from keyboards. We also feel we want to return the favor to those who, often behind their computers, care for all of us by engaging everyday in straining battles for freedom.

Because of the current actions against secure eMail providers in the USA (for example Lavabit) eMail security gets more and more important in the world. The current implementations of MTAs, POP3 and IMAP Servers do not provide a secure eMail storage. Adding such a secure storage is not trivial, because the encryption keys have to be stored at the eMail provider, enabling organizations to get hold of this key and decrypt the eMail. To prevent this, an asymmetric encryption standard has to be used. The eMail provider encrypts incoming eMail with the recipients public key and the recipient, after downloading the eMail, decrypts it with his private key. This talk presents a plugin for the QPSMTPD SMTP server, which does exactly this. Every incoming email is encrypted with the recipients PGP public key in the PGP-Mime standard, if this key is locally available and trusted. After encryption the eMail is forwarded by SMTP to the backend Mailserver. This method can easily be adapted to any other queuing plugin for the QPSMTPD daemon.

While social media are increasingly opening up new possibilities for users to share and interact with people and content online, it has also become apparent that, as networking systems evolve and online interactions become more frequent and complex, it is always more difficult to retain control over our online footprint.

This work is hence concerned with the modelling the user online footprint as a result of the aggregate activity collected across different services online, calculating the risk that a user can be subjected to a particular attack, hence profiling known attacks, and finally helping the user to maintain a desired online footprint by adopting certain privacy enhancing techniques.

Investor-to-state dispute settlement (ISDS) gives multinationals the right to sue states before special tribunals if changes in law may lead to lower profits than expected. Multinationals can challenge environmental policies, health policies and reform of copyright and patent law. A growing number of civil society groups see ISDS as a threat to democracy.

hPDB is a parallel Protein Databank parser written in a lazy functional language Haskell. According to current benchmarks it is among the top three parser when used on a single core, and outclasses other parsers when used on quad-core. Is it sign of a new future for both Haskell, and parsing?

I will present the DIY Bookscanner of Dan Reetz, along with the book scanning communities of the world.

We will show how the machine works, why you should build your own, how you can spread knowledge and culture all over the world
Come to La Quadrature du Net's tea house for a demonstration, and to scan your own books !

How to organize a traveling conference in a small country (Bulgaria) on IT/hacking topics, with a very low budget, with the idea to educate the people, to show new things, to give them something to research and advance their own projects. Everything was recorded and streamed in real time.

Kinko believes: What is in your email concerns only you and the persons you write to. Period. Even in times of NSA and Tempora surveillance programs strong crypto still works - whenever we use it. Let's build the tools to make it a breeze to use -- for everyone!

This is (as far as we know) the first time Amnesty International is present at the Chaos Communication Congress. In the past, Amnesty has been a bit hesitant to approach the issue of human rights in the digital world in a consistent manner. We at Digital@Amnesty, an evolving new task force, would like to finally change that and use the opportunity of being here to briefly introduce the concept of our work. At the same time, we want to get in touch with all those of you who feel a need to take action, and call upon other NGO's active in this field to join forces with us.

Light painting with LED stripes is fun! This talk presents a light painting tool based on the LightScythe by The Mechatronics Guy. Some improvements were added to provide easier setup and handling in the field, e.g. a web interface to control settings with mobile devices and on-device image preprocessing. The intention of this talk is to lure some photographers into a light painting session outside the CCH.

This talk will present Bitford, a BitTorrent client with novel features. Piggybacked on Chrome, it runs on many OS platforms. Because browsers feature A/V playback capabilities, it turns BitTorrent into a true YouTube killer by allowing playback while still downloading.

Ever wished you could play media content from your laptop or smart phone on a TV set, screen or projector in just an instant? This is what ScreenInvader helps you do: browse the web, watch videos or flip through images together with your friends on a big screen with just a few simple clicks.

This project aims to be used by someone receiving a USB key from an untrusted source and who want to see the content you do not know what is on it without opening the original and potentially malicious files.

The italian tech collective and media activism group A/I has written down its history in a book. We are about to translate the book straight into german language. The talk presents the translation project and woos further contributors.

Before we change how our societies work, shouldn't we first understand how they actually work? Those who benefit from the structure of the present system seek to limit public comprehension of the social system. Let's use the tools we used to understand physical systems to understand, and then to change how our social systems work.

GNS, the GNU Naming System, is a decentralized, censorship resistant and secure naming system. Every user manages his own namespace and can access other users name using a delegation system. In the context of the "Youbroketheinternet" workshop and the panel discussion about secure naming systems we provide the possibility to directly get to know GNS. We organize a GNS key exchange party at 30C3 where users can get business cards containing their GNS information and exchange with other GNS users.

uProxy is an experiment allowing users to easily and securely proxy through or for their friends. Available as a browser extension and eventually on mobile devices, uProxy seeks to improve the current state of proxies via trust, scalability, and most importantly, usability. The project was seeded by Google Ideas and currently in development. It will be open source.

Let's chat about the most relevant aspects of what uProxy does and does not do, and more.

I bought an raspberry pi at 29c3 and built my own smart meter. I learned that my house consumes too much energy when doing nothing. And I learned, that now everybody can check how many slices I toast in the morning (reality). All of this inspired me to cook up my own homegrown micro-powerplant (just an idea yet). Then I started thinking about a simple need driven decentralized electric prower grid. Then I thought about a new world currency coupled to energy rather than gold and now I'd like to talk about it before someone silences me...

Data protection authorities, other regulators and legislators invest considerably in defining and interpreting legal rules for the protection of individuals’ fundamental rights of personal data protection and privacy. At the same time, developers of internet tools and applications unaware of the risks to privacy and data. If these two trends continue to diverge, there is an increased risk that the actual privacy of individuals will become substantially less protected. This talk is meant as an invitation to developers to discuss how this separation can be overcome.

This talk will be a brief introduction to the world of names and nyms-- pseudonyms, polynyms, anonyms, and more! We'll cover some fundamentals of how names work and why, and then explore the challenges we're encountering as we try to bring name-related systems into technology. We'll also take a look at the National Strategy for Trusted Identities in Cyberspace, a US-government group tasked with solving many of today's challenges, and see how they are doing.

Some ideas and examples on how to make art with a 3D printer/scanner where the printer/scanner is more than a simple tool for creating objects. Because of the unique possibilities and characteristics the 3d printer becomes itself part of the artwork it is creating.

After a dramatic event that shook the hacker community in January, I began a quest to change draconian computer laws. In our effort to bring the bring the hacker community together, I encountered surprising obstacles. In this talk, I will cover the obstacles that we encountered and will briefly cover ideas that we've put together to address some of these obstacles.

Fenrir is a UDP-based transport protocol which combines ideas from SCTP, QUIC and other protocols, adds encryption (not based on SSL), uses DNSSEC for trust and pubkey management, implements federated authentication and much more.

This talk features several new ideas on how to speed up data retrieval using time based blind SQL injection (SQLi). It's important to realize the difference between boolean based SQLi and time base SQLi. and why the later has more in common with “What's My Line?” aka “Heiteres Beruferaten” than binary search. Just applying this knowledge to sqlmap resulted in a speed increase of 20% with a patch of 10 lines of code. Password hashes can be retrieved even faster by narrowing down to hex-digits.

Most people fail to establish secure communications. Therefore pribook.com is an approach to gain asymmetric encryption from user to user, without the need for installing a program or store keys. It is a social network service with build-in RSA encryption which is executed in the web browser. In this lightning talk I will give a brief summit to gain attraction for our self-organized-session. We are looking forward to find some people who want to join us, to start this idea as a non-profit open-source project.

The Labyrinth at Positive Hack Days is a real life hacking attraction. During only one hour the participants of the competition are to get over the laser field and motion detectors, pick some locks, clear the room of bugs, defeat artificial intelligence, and disarm the bomb. To get through the Labyrinth, you will need some skills in dumpster diving, lock picking, application vulnerabilities detection, social engineering, and of course, there is no way without mother wit and physical fitness.

Encrypted email has been around for ages, but most people still don't use it. One problem is that Google, Microsoft, Yahoo, and others want to keep mining your inbox for juicy data, and are thus not interested in pushing proper email encryption. Another important problem is that current solutions are difficult to use. We will look at how get email encryption ready for the masses.

BalCCon 2k14 - : Balkan Computer Congress has been conceptualized as a two day gathering of the international hacker community in the organization of LUGoNS – Linux users of Novi Sad. The first part of the program has been envisaged to be a set of presentations, workshops and lectures on the current topics regarding privacy, technology, software development, free software & socio-political issues. Our goal is to gather all the communities from the region, continent and the World in an effort to hack, play, learn, pass knowledge and exchange experience.

Never before in history surveillance of public and private space and thoughts was so comprehensive like nowadays but oddly enough never before people cared less about being surveilled. I want to introduce a provocative idea that might explain this observation: total control leads to total freedom. I hope that further discussion may result in a better understanding of public ignorance and in better ways to mobilize people against their surveillance.

A group of Finnish mathematics enthuasiasts hooked together a year ago write a Creative Commons high school textbook over a weekend. The concept was a success and has since extended into a charming project where we've begun to set our sights into writing all the necessary school books - freely available for everyone to use, modify and distribute. Wanna know how it worked? Wanna duplicate our textbook hackathon in your country? Here's how.

Bitcoinproof creates a forgery-proof timestamp for your data, secured by the bitcoin network. This enables you to prove that a certain event happened before a certain point in time, without trusting any central authority. So you can use the bitcoin network as a digital notary service!

Community projects settled around free standards, privacy and security have been taking rapid movement throughout the last years. But why is it also important to bring this movement to kids and teenagers?

Deploying good crypto correctly is complex. This guide gives you all the details you want and the config to copy/paste. It's creation process is completely transparent and the the contents are heavily peer reviewed by experts in the field.

ddserver is a server-side application for dynamic DNS management. It allows you to specify hostnames (subdomains) inside a dynamic DNS zone, and to update the IP address of those hostnames using a dynamic update protocol (no-ip protocol). This enables you to access hosts with dynamic IP addresses by a static domain name, even if the IP address changes.

FAQ

Curation of Content

Q: How do you choose which Lightning Talks to put in? What topics do you not accept?

A: Lightning Talks are generally first-come, first-served. Controversial topics may not be accepted. Any talks rejected for content will be informed of the reason for their denial.

Q: I'm so nervous! I've never been on stage before. I couldn't possibly give a lightning talk!

A: Yes, you can! LTs are not about being polished or professional, they're for people with passion for their ideas. It's very natural to be nervous, but that fades quickly once you're on stage talking about your ideas. Many people who gave a good Lightning Talk went on to submit a successful lecture at a future congress.

Q: Can I give a talk anonymously or pseudoanonymously?

A: No, and please don't ask. Submissions requesting anonymity will be discarded without review or reply.

Slides: Why it's a requirement

Q: Why are slides required?

A: TL;DR: It shows that you can both read directions and take the de minimis effort to prepare your talk.

Reading directions and minimally preparing are both critical steps to assuring that the talk goes well for you and that session is enjoyable for everyone. This step alone weeds out many people who simply want to get on stage and talk without thinking through their ideas or arranging them in a manner than takes them no more than 5 minutes to explain. People who can't prepare will be mercilessly placed into the 180 second round.

Q: I want to reserve a slot, but I won't have my slides prepared until the congress.

A: You need to provide at least a title slide or background graphic to confirm your place on the schedule. The deadline for final slides is Day 1 of the 30c3 at 23:00 CET. No slides? You're in the 180 second round.

Q: Why do I have to submit slides in advance?

A: Because switching from laptop to laptop wastes a lot of time and breaks the flow of the session. Constantly switching laptops previously plagued the flow of the lightning talks. At the 29c3, using this format, we were able to present nearly six hours of talks and achieve nearly standing-room only crowds with only 2-3 display failures. Most LT presenters find it far better to reach many more people with a solid, concise message than give a flashy presentation to a handful of people.

Q: What if I don't want to use slides at all?

A: That's fine, but if you want a full 5 minute talk you must provide some kind of background graphic to say who you are and what you're talking about. This is for the audience's benefit. If they really like what you're saying, you should give them some way of getting a hold of you. Otherwise, the 180 second round is an option for you.

Q: What should I include in my last (or only) slide?

A: The following things should be in your last slide (however, they are not mandatory):

Your Name (handle, etc.)

Contact (DECT, email, fon)

Links (project homepage)

Place of contact (assembly, room, party)

Q: But I have a really cool animation/presi/flashytime presentation that I must give on my own hardware!

A: There are only a very small number of slots where this will be possible, at the beginning and at the break for most sessions. You must test your hardware in advance and any delays in getting your laptop on the beamer will come out of your five minutes. Why not try a video instead?

Other FAQs

Q: I can't possibly give my talk in 5 minutes! Will there be any 15 minute (i.e. FOSDEM style) slots?

A: There are a small number of slots for 15 minute talks. With your submission, write in greater detail why you really need 15 minutes to fully deliver your talk.

A: Yes you can! We strongly recommend using the last minute of your talk to mention your fundraising website, as well as adding a very visible link to your crowdfunding page from your main project site. Of course, this is most helpful if you've added a link to your main project site in your application.